Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/bxDaLmgJyUhNl1UBHVa4b2xCpS0.roa
File: bxDaLmgJyUhNl1UBHVa4b2xCpS0.roa (raw, json)
Hash identifier: dq4WytTk6oYUb+38rvMNIG5R3IE3+ahZP5CMycNUdfE=
Subject key identifier: 6F:10:DA:2E:68:09:C9:48:4D:97:55:01:1D:56:B8:6F:6C:42:A5:2D
Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Certificate serial: 01856CE662A7FD4692A138650967BD3D834A
Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/bxDaLmgJyUhNl1UBHVa4b2xCpS0.roa
Signing time: Sun 01 Jan 2023 10:35:15 +0000
ROA not before: Sun 01 Jan 2023 10:35:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197236
IP address blocks: 95.43.229.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:e6:62:a7:fd:46:92:a1:38:65:09:67:bd:3d:83:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Validity
Not Before: Jan 1 10:35:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6f10da2e6809c9484d9755011d56b86f6c42a52d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:fd:a4:48:25:eb:b2:d5:1a:c7:25:ce:4e:d8:
71:13:83:f7:78:fe:2e:c9:ff:7c:69:fb:fa:d4:76:
b6:4f:41:4e:e0:e3:36:b4:bb:70:d5:0f:9e:8a:47:
57:63:ed:10:f5:fb:a4:c6:d2:69:1b:bb:36:62:26:
89:c9:bd:23:dd:ec:02:5e:bb:24:12:1c:9e:b7:24:
1f:5c:47:b1:42:92:d5:5a:47:33:05:37:f0:0b:82:
18:25:8e:ae:26:f3:7a:3b:c0:1c:6e:12:da:67:cb:
83:e5:43:50:11:5c:50:95:32:57:15:5b:8c:74:70:
3d:92:21:48:c0:38:4c:4c:30:cb:32:ad:4a:f4:52:
8e:c8:fb:e7:1c:04:fb:77:a2:93:5c:62:8f:56:d8:
00:34:87:2a:18:b9:c0:f5:9c:0b:1e:07:0e:2a:88:
af:18:a4:c6:45:29:7d:45:75:3e:25:91:fc:b3:32:
eb:60:f0:2d:9a:70:4b:7a:d8:89:9b:66:93:64:88:
73:ee:a1:df:de:7d:dc:aa:87:fc:ea:0e:60:86:80:
6c:6e:e2:48:25:48:37:e3:aa:9d:38:39:89:67:89:
a9:a7:a0:5e:a7:0c:05:13:6d:cf:93:47:fc:b3:d1:
e0:9b:05:bd:5a:a5:58:5c:cd:95:88:9c:38:a1:44:
d9:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:10:DA:2E:68:09:C9:48:4D:97:55:01:1D:56:B8:6F:6C:42:A5:2D
X509v3 Authority Key Identifier:
keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/bxDaLmgJyUhNl1UBHVa4b2xCpS0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.43.229.0/24
Signature Algorithm: sha256WithRSAEncryption
87:87:be:b0:50:e0:37:6f:79:f2:55:6e:a1:a9:2e:cc:fb:92:
c8:64:30:a9:78:a8:e0:1d:98:31:4c:8a:3e:3c:39:87:a9:dd:
f3:dc:dd:c2:f5:15:e2:16:fe:da:a0:45:28:ae:d3:18:4c:8e:
4e:fc:30:18:e0:0c:8b:9a:b1:91:f4:b1:12:31:c0:a5:21:17:
69:89:91:88:fc:41:2a:ac:86:af:a1:dc:92:f5:c4:a1:f2:ed:
82:bc:20:d7:9e:ed:3e:60:a5:64:3c:3d:6e:07:34:b4:1d:0b:
45:35:00:50:a8:de:33:2a:06:a1:ac:fc:44:9f:c6:ec:05:2d:
ca:35:6d:2f:25:cc:83:b3:7a:90:e5:c9:69:ce:93:b0:a6:b2:
a2:25:3b:d6:c0:a9:67:f0:30:bd:d3:89:76:c2:8b:eb:5d:33:
b0:82:01:60:f1:24:ab:66:92:69:96:3c:70:02:e9:1a:fa:d7:
1e:f0:9d:1a:ac:89:4f:50:30:6e:9a:a2:43:a9:10:42:c4:3a:
55:e2:d5:9c:ef:00:8c:2e:26:d8:19:81:52:ad:83:da:04:04:
f0:f9:06:f8:e6:0b:6e:8c:c0:55:6a:07:3f:02:75:c7:57:f8:
9d:32:99:82:9d:b1:62:f2:5e:a8:58:8f:fa:8e:90:d7:6b:b4:
d3:41:1b:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:05 2024 by rpki-client on console-fra.rpki-client.org